TOC & Recently Viewed

Recently Viewed Topics

Log Correlation Engine Software Requirements

Version Software Requirements
  • An active LCE license
  • RHEL/CentOS 5.x, 6.x, or 7.x, 64-bit
  • Elasticsearch 2.3.3 to 2.4.6
  • Java Runtime Environment (JRE) 1.8 update 20 or later
Previous Versions
4.4.x through 4.8.x
  • An active LCE license
  • RHEL/CentOS 5.x, 6.x, or 7.x, 64-bit

Additionally, while LCE is active, it requires exclusive access to certain ports. The only services that are required to support remote users are SSH and the LCE interface (lce). If other services are active on the system, conflicts should be avoided on the following default ports:

Port Description
162 SNMP
514 Syslog messages
601 Reliable syslog service messages
1243 Vulnerability detection (if enabled in
6514 Encrypted TCP syslog messages
7091 Communication between showids and lce_queryd
7092 TASL processing
8836 LCE interface
31300 LCE API

Caution: The system running the LCE can operate a syslog daemon, but the syslog daemon must not be listening on the same port(s) that the LCE server is listening on.

Copyright © 2019 Tenable, Inc. All rights reserved. Tenable,, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.., Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.